FreeBSD是一款基于BSD的操作系统。
FreeBSD包含的蓝牙和netgraph套接字内核实现存在错误,本地攻击者可以利用漏洞以内核空间上下文执行任意代码。
netgraph和bluetooth套接字不正确初始化部分函数指针,本地用户可以使FreeBSD内核执行任意代码,获得ROOT特权。
FreeBSD FreeBSD 7.1 -PRE-RELEASE
FreeBSD FreeBSD 7.0-RELEASE
FreeBSD FreeBSD 7.0 -RELENG
FreeBSD FreeBSD 7.0
FreeBSD FreeBSD 6.4 -RELEASE
FreeBSD FreeBSD 6.3 -RELENG
FreeBSD FreeBSD 6.3
厂商解决方案
可参考如下补丁:
FreeBSD FreeBSD 7.1 -PRE-RELEASE
FreeBSD SA-08:13/protosw.patch
<a href=http://security.FreeBSD.org/patches/SA-08:13/protosw.patch target=_blank>http://security.FreeBSD.org/patches/SA-08:13/protosw.patch</a>
FreeBSD FreeBSD 6.3
FreeBSD SA-08:13/protosw6x.patch
<a href=http://security.FreeBSD.org/patches/SA-08:13/protosw6x.patch target=_blank>http://security.FreeBSD.org/patches/SA-08:13/protosw6x.patch</a>
FreeBSD FreeBSD 6.4 -RELEASE
FreeBSD SA-08:13/protosw6x.patch
<a href=http://security.FreeBSD.org/patches/SA-08:13/protosw6x.patch target=_blank>http://security.FreeBSD.org/patches/SA-08:13/protosw6x.patch</a>
FreeBSD FreeBSD 7.0 -RELENG
FreeBSD SA-08:13/protosw.patch
<a href=http://security.FreeBSD.org/patches/SA-08:13/protosw.patch target=_blank>http://security.FreeBSD.org/patches/SA-08:13/protosw.patch</a>
FreeBSD FreeBSD 6.3 -RELENG
FreeBSD SA-08:13/protosw6x.patch
<a href=http://security.FreeBSD.org/patches/SA-08:13/protosw6x.patch target=_blank>http://security.FreeBSD.org/patches/SA-08:13/protosw6x.patch</a>
FreeBSD FreeBSD 7.0
FreeBSD SA-08:13/protosw.patch
<a href=http://security.FreeBSD.org/patches/SA-08:13/protosw.patch target=_blank>http://security.FreeBSD.org/patches/SA-08:13/protosw.patch</a>
FreeBSD FreeBSD 7.0-RELEASE
FreeBSD SA-08:13/protosw.patch
<a href=http://security.FreeBSD.org/patches/SA-08:13/protosw.patch target=_blank>http://security.FreeBSD.org/patches/SA-08:13/protosw.patch</a>
暂无评论